F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

walid_97402's avatar
walid_97402
Icon for Nimbostratus rankNimbostratus
Apr 09, 2013

Link controller design

hello, i am having a concern on my link controllers for inbound load balancing. i have my design to be simply as this

 

( internet with public IP's)

 

then

 

firewall ( public IP from external and local IP from internal)

 

then

 

F5 link controller ( local IP's from External and local IP's from Internal)

 

 

.we have done all the outbound traffic to work as well as the inbound traffic. my concern is load balancing inbound traffic how would the link controller reply to DNS queries on my wide IP if all my virtual servers ( for hosted applications) have local IP addresses. is there a work around for that.

 

 

Kind Regards walid

 

config
design

2 Replies

  • HHeredia_36237's avatar
    HHeredia_36237
    Icon for Nimbostratus rankNimbostratus
    Apr 24, 2013
    I think that's not the apropiate way to deploy LC for inbound traffic at least. As you state, the LC start to resolve WIDE (FQDN) to one of the Virtual Servers you have, so if they were private addresses, what user would get is an unreachable IP for the looked up domain so you may want to reconsider your desing an put the LC over the FW, use it's corresponding public IP addr. and get firewall a new private IP assingment to be used between it and the F5.

     

     

    Good luck,

     

     

    HHeredia
  • elvis_chavezg_1's avatar
    elvis_chavezg_1
    Icon for Nimbostratus rankNimbostratus
    Jan 28, 2014

    Hello HHeredia In this case, is necesary double NAT in the network, so one NAT private to new private in Firewall and other nat of new-private to Public ip in the LC?

     

    best regards